fuzzdb
Even it is not a direct tool but I think it is a good chance to check your application about known attacks. Cos fuzzdb is a collection of known attacks against web applications and can be used with open source (Fuzzing) scanners. Under Linux there are bspw. fuzz, wapiti or zzuf.

the mole
The mole is a automatic SQL injection scanner. Unfortunately it is just in the beta state.